Title :
A failure to learn from the past
Author :
Spafford, Eugene H.
Author_Institution :
CERIAS, Purdue Univ., West Lafayette, IN, USA
Abstract :
On the evening of 2 November 1988, someone "infected" the Internet with a worm program. That program exploited flaws in utility programs in systems based on BSD-derived versions of UNIX. The flaws allowed the program to break into those machines and copy itself, thus infecting those systems. This program eventually spread to thousands of machines, and disrupted normal activities and Internet connectivity for many days. It was the first major network-wide attack on computer systems, and thus was a matter of considerable interest. We provide a brief chronology of both the spread and eradication of the program, a presentation about how the program worked, and details of the aftermath. That is followed by discussion of some observations of what has happened in the years since that incident. The discussion supports the title-that the community has failed to learn from the past.
Keywords :
Internet; Unix; computer crime; invasive software; utility programs; BSD-derived versions; Internet; UNIX; network-wide attack; utility programs; worm program; Computer networks; Computer security; Computer viruses; Computer worms; Internet; Personnel; Postal services; Software systems; Sun; Utility programs;
Conference_Titel :
Computer Security Applications Conference, 2003. Proceedings. 19th Annual
Print_ISBN :
0-7695-2041-3
DOI :
10.1109/CSAC.2003.1254327
